Quick IPTables Commands
Aug 1, 2009
Quick IPTables Commands
List: iptables -L -n | grep <IP Address>
Remove: iptables -D INPUT -s <IP 1> -d <IP 2> -j DROP
Insert: iptables -I INPUT -s <IP> -j DROP
Flush: iptables -F
Remove: iptables -D OUTPUT -s 0.0.0.0/0 -d 66.93.33.185 -j DROP
netstat -nap | grep :80 | wc –l (shows # of connections to HTTP)
netstat -ntu | awk '{print $5}' | cut -d: -f1 | sort | uniq -c | sort –n (shows total connections per IP, if more than 100 block)
View 3 Replies
ADVERTISEMENT
Jan 5, 2008
I execute the following commands, in the following order:
iptables --flush
iptables --zero
iptables -A INPUT -s 218.65.12.161 -j DROP
will that last command successfully ban that IP until reboot?
If not, what needs to be done? I can't access my site if I don't flush + zero iptables first but I need to be able to ban with iptables.
View 2 Replies
View Related
Jan 9, 2007
I`ve read this about allowing certain IPs access to the server
Quote:
More advanced: /etc/apf/allow_hosts.rules
10. As a safety precaution, you might want to add your ip to the '/etc/apf/allow_hosts.rules' file.
Open the file in your favorite editor.
11. Add the ip of your computer to the end of the file. This will cause all traffic to and from that ip not to be filtered. You can also add the ip's of other servers.
If you want to specify what kind of traffic to allow from those ips that is not covered with the current firewall rules (ie. you blocked all traffic to SSH and only want a few ips to be able to access the SSH port), then this is the format you would use:
Protocol : direction/flow : source/destination port : s/d ip
[tcp/udp] : [in/out] : [s=/d=]PORT : [s=/d=]IP
Ex (let the ip 192.168.0.100 access to port 22):
tcp:in:d=22: s=192.168.0.100
What I`d like to know is if its possible to put an IP range in there instead of just one ip address
such as you specify a range in the conf.apf file upon setup
eg:
tcp:in:d=99_123: s=192.168.0.100
where 99_123 is the port range
View 2 Replies
View Related
Jul 21, 2007
I am building a server using two Clovertown E5320 processors for a project. I need some suggestions for a motherboard and memory. I have looked at some boards on Newegg, but I'm still unsure. I do not have a large budget for the motherboard, so the cheaper, the better.
If anyone has other processors they would go with alternatively I'm open to suggestions there as well. It was either going to be a single Clovertown (later to be two) or two AMD Opteron 2212's....
View 10 Replies
View Related
Oct 5, 2009
I find it worrying when new or relatively new users post "[XYZ]VPS PROVIDER IS A SCAM" or "[XYZ]VPS ROBBED ME" in a topic because they didn't get the instant ticket response or fast enough setup time on their $10 VPS..
I'm planning on setting up a budget UK based VPS service myself some time soon, and users would do well to remember that a lot of hard work goes in to the management and set up of such providers. This kind of negative publicity can not be taken back once posted. A quick google search will throw this kind of a post up and cause irrepairable and often, completely unnecessary harm to a business..
View 14 Replies
View Related
Jun 6, 2008
I currently switched from XXX to infinitie.net vps service. I was tired of foreign help dealing with people with poor english. Tech support has been very good, and good response times. Servers themselves have good performance. Not the fastest, but the mysql performance has been very good. It's also nice to have a VPS but setup and stuff can be somewhat intimidating. They were very helpful, but I did opt to pay them a small fee to do it for me. The hourly rates aren't a bargain, but when you factor in the time you would need to do it right, if you are just so-so at it, then it was probably worth it.
So far it's only a week, but it's been a happy week. No downtime at all so far. I'll report to you in a month and tell you how things are going.
View 1 Replies
View Related
Sep 8, 2008
During the past 24 hours, two things have happened with iMountain.com that I wanted to let you all know about.
1. I uncovered a bug in the Webshell application that they use (bundled with Hsphere) which was preventing me from gzipping up my and my buddy's owsweather.com site for weekly backups. Reported it in an email, and in 2 minutes I had a reply back saying that they would notify Hsphere of the issue since it's a bug in the software. Good job there.
2. The big one is that the same owsweather.com site is getting clobbered by HUGE amounts of traffic - more than we ever have in our 8 year history. We have received over 2500 unique IP visits since midnight (it is now 5 minutes until 6:00 am PDT in California).
I must give major props to iMountain for building rock solid servers which don't bog down under high traffic load, and also for allowing us to "use" their servers for what they are INTENDED to be used for! If it wasn't for them and allowing our site to have bursts of traffic like this *see Dreamhost, Bluehost, and other similar reviews*, we would be in a very tight spot indeed. So thanks Brandon and crew. You have done us well.
View 8 Replies
View Related
Aug 3, 2007
I recently changed providers after a short search, including input from this thread [url].
I opted to go with a semi-dedicated package from Iron Mountain ( www.imountain.com ). I was mostly impressed with their clustered solution and dedicated mySQL servers to host our increasingly busy Vbulletin forums. They also answered email inquires very quickly; another good sign, given the few comments I could find about them at WHT.
While I was intrigued about the solar-powered claim, I knew that many in our community would appreciate that aspect as well.
Ultimately, I wasn't quite convinced our forum issues were mainly related to CPU/memory resource use. So, I narrowed my search to providers that also claimed to have a good setup for SQL. These included Cartika Hosting and MediaLayer, among others (Thank you to all who responded with input and offers!). At that point, it came down to lowest price and iMountain's offer was also in the upper end of the price range supported by recent member donations. In case I was wrong about the CPU resources, at least this would at least allow some time to save for the dedicated solution that many recommended.
As it turns out, the CPU/memory resources were not the issue at all. It seems that our forum issues at the previous provider were primarily due to their SQL implementation.
In fact, they were going to generously allow us to continue on our $50/year plan for a while given that we weren't yet hogging resources. Nonetheless, the slowdowns and SQL errors continued until the last day. In any case, I can still recommend AddAction.net for anyone looking for a competitively priced basic hosting package if you don't have major SQL requirements. It was inexpensive, but I believe I got a lot more than I paid for.
Since the switch, the forums have been running great. No slowdowns, no freezes, no infinite waits to read/make a post, no flood of SQL error email messages. Most importantly, no user complaints so far. In addition, I've been told that we aren't even putting a scratch in our resource allocations in any area and there should be plenty of room for growth that has been doubling about every 6 months for the last few years.
The transfer was quick and the switchover had minimal downtime given that the new plan included a dedicated IP address for me to direct users of the forums during the DNS propagation. There were a couple minor issues during the switch, but their tech support team responded very quickly. They also helped setup a memcache for the forums and suggested some other tweaks to further improve performance.
Overall, I am very satisfied so far. I'll report again in a couple months when I have a better feel for downtime and more time for users to comment.
View 14 Replies
View Related
Aug 23, 2007
We've recently decided to move a sizable web project to a VPS located at bigvps.com (colo4jax). Although I had some initial concerns about them being single homed to Cogent, I have actually been pleasantly surprised at the speeds of the network. I have seen some very good speeds to some of my key servers located on the West Coast and even better on the East Coast (expected). For grins, we even tested a proprietary voip software between the datacenter (It's in Jacksonville) to one of our offices in San Francisco. It was perfect!
The hardware seems solid and support has been quick to respond to any inquiries.
Although we havent moved over the web project yet, the work we have done on the server has been no problem at all. We expect that when we move over the web project, the VPS will continue to hum along.
As with all providers, it's been a short life with them thus far - I'll post back in a few months and let you know how things progress.
View 14 Replies
View Related
Aug 7, 2008
I'm a non-techie trying to choose a dedicated hoster. From searching through reviews and prices, I've come down to Lunar Pages or Liquid Web. Would you please give me your opinions of these two, and if there are others that you feel strongly about instead, mention those as well? I would really appreciate it -- I'm very anxious about choosing a reliable company with good service, b/c I'll pretty much be at their mercy! (Life is hard for the non-technical
My programmer gave me these requirements: managed hosting, windows server 2003 or 2008, web edition, 2 GB ram, ms sql server 2005 or above, quad core processor from 1.8 - 2.4 ghz, firewall, automatic backup -- 10 GB, remote desktop connection.
View 7 Replies
View Related
Feb 26, 2009
I've been a long time reader but I figured I would finally sign up for an account and post a review of my current VPS host, WingSix.com.
Ratings range: 0-10
0 being the worse and 10 being the best
Uptime: 7/10
The uptime has been pretty good. Over the course of six months I had about 1 hour of downtime due to a hardware failure but over the last month I have had nearly 20 hours of downtime due to unexplained outages and migration issues.
Support: 4/10
The support has been horrendous. My average response to tickets is measured in days, if they respond at all, and I still have tickets opened from when I initially ordered the account relating to creeping file corruption which support just dances around. I have also had my IPs changed and server moved twice in the last month with little to no advance notice. Usually nothing actually gets done until I call them and even then it's a crapshoot.
Performance: 9/10
The performance on the server is excellent. The server is primarily a DNS and Mail host for my domains and, so far, I have had no problems with the speed or responsiveness of the service. Take this rating with a grain of salt, however, because I have never done much that would put an incredible load on the server.
Price: 8/10
Their pricing is fairly competitive with other hosts I have looked at. I am currently on their VPS Hawk plan ($25/mo) which offers:
2 dedicated IPs
15 GB storage
400k inodes
100 GB bandwidth
256 MB RAM / 1GB burstable
CPanel
Conclusion
While the uptime, price and performance are good I am hesitant on recommending them to anyone based on my experience thus far with their support
My domain has been reported to the mods.
View 7 Replies
View Related
Nov 7, 2008
server intrusion: quick fixes
View 12 Replies
View Related
Dec 1, 2008
I another thread recently I done a 5 year review for another provider hover circumstance changed and I took on a couple of Gigenet servers ( relatively high end)
Sales were extremely efficient working with me to achieve what I needed at a price I was comfortable with, replies were fast and concise so I ended up with 2 new machines and backup service.
Normally I don't need a lot of support and for the first few weeks nothing bar rDNS set ups - However I ran into some serious post migration issues over the past few days that had me stumped, support has been some of the best I have ever received both in speed and efficiency -
Anyway I sincerely hope I will be coming back to this thread in 5 years time to update it.
View 1 Replies
View Related
Jan 8, 2007
There's a new Wordpress out, so it's a good time to make sure you have any/all wordpress installs updated.
Running this will find versions for every one installed in /home/
Code:
find /home/ -type d -name wp-includes -exec grep -H wp_version {}/version.php ;
The latest version is now 2.0.6
View 1 Replies
View Related
Jan 20, 2015
I need a quicker way to find spammers. I've found a decent way to find the scripts, but I want to find heavy offenders by a simple command line or something to identify all scripts sending e-mail in let's say a text document or something.
View 2 Replies
View Related
Feb 8, 2008
I'm about to purchase a 2nd server to be used as a database/app server alongside my current server (of which will be the web server).
I wish to use 2 x 146GB 10K SCSI hard disks (in RAID 1) on the database server, but will be keeping 2 x 320GB SATAII 16M in RAID 1 on the web server. Will the SATA hard disks affect the performance / effectiveness of the SCSI disks or will I benefit from SCSI even though they're only in the database server?
Also, I'm going for 10K hard disks over 15K because they $20 per month cheaper and it's already expensive ($150 p/m for the two 10K or $170 p/m for 2 x 15k). Taking into account the already hefty price, is it worth the extra for 15K?
View 1 Replies
View Related
Jun 9, 2008
I am running a CPanel VPS and wanted to see whats the actual ram stats. (My package have 512 MB ram)
The issue is, using two different methods, I am getting two different values.
Via SSH, free -m gives this
total used free shared buffers cached
Mem: 512 204 307 0 0 0
-/+ buffers/cache: 204 307
Swap: 0 0 0
and while running a script that I have found Here in WHT
Code:
#!/bin/bash
#
# Revised 02-Feb-2007: include kernel memory (kmemsize) in 'used' calculation
# and show percentages in output.
#
BEAN=`cat /proc/user_beancounters`
GUAR=`echo "$BEAN" | grep vmguar | awk '{ print $4;}'`
PRIV=`echo "$BEAN" | grep privvm | awk '{ print $2;}'`
KMEM=`echo "$BEAN" | grep kmem | awk '{ print $3;}'`
let TOTL=$GUAR/256
let KMMB=$KMEM/1048576
let PVMB=$PRIV/256
let USED=$KMMB+$PVMB
let FREE=$TOTL-$USED
if [ "$FREE" -gt "0" ]; then
let UPER=$USED*100/$TOTL
let FPER=100-$UPER
else
let UPER="100"
let FPER="0"
fi
echo "VPS Memory:"
echo " Total: $TOTL mb Used: $USED mb (${UPER}%) Free: $FREE mb (${FPER}%)"
It gives
Total: 512 mb Used: 482 mb (94%) Free: 30 mb (6%)
Why such huge difference??
Also "top" command shows
top - 02:44:04 up 1 day, 9:55, 2 users, load average: 1.35, 1.04, 0.94
Is that good for a a VPS with 512 RAM? (The site has extremely high traffic)
View 0 Replies
View Related
Jan 28, 2008
I've been reading through tutorials for setting up cron commands via cPanel, but everything I have tried does not work. What I need to do is simple - I just want to run a php file on my server once every 15 minutes.
View 1 Replies
View Related
May 25, 2008
commands for cron job, i need to backup only 2 account backup in cron job one username is panther that a/c is in paretition "home" another a/c name logictec itz in partion "home2" for this two a/c only i need make cron job but there are in seprate partion can u help me in give the comman which can make backup in cronjob every one day
View 4 Replies
View Related
May 29, 2008
I am not familiar with shell scripting, so I'm asking for your help. I want to do
I need to batch convert all my videos so i used the command for particular folder media/ipod so i used
find /media/ipod -type f -exec mencoder {} -of mpeg -oac lavc -lavcopts acodec=mp2:abitrate=192 -af resample=44100:0:0 -ovc lavc -lavcopts vcodec=mpeg2video:vbitrate=50 -vf scale,harddup -ofps 25 -zoom -xy 176 -o {}.mpg ;
now i need to convert all my avi videos to 3gp for folder via batch convert.please help for this commands
View 2 Replies
View Related
Aug 20, 2007
does anyone know how i would find out what version of apache server i have? i have root access.
View 5 Replies
View Related
Jul 30, 2014
We've been experiencing a lot of trouble with novice customers that want to install an Application Vault package that has sub-optimal default settings, e.g.
customer wants to install wordpress, clicks on Application Vault -> wordpress -> "INSTALL"
This will install, without any questions for settings, wordpress into domain.com/wordpress - which is not what people want. I know that there is a button with teh drop down menu that shows "custom", however, people don't see/know about it and click "install".
Is there a way to remove / replace the "quick install" button and have the "install custom" as default.
View 2 Replies
View Related
Jul 29, 2007
It may be useful to someone, sometimes the queded mail list gets gigantic because of some spammer and other emails that aren't spam could get deleted when using cPanel to control it.
The better solution would obviously be to prevent spammers of sending all those mails, if you know a better solution on cPanel 11 please share it with me.
==== REMOVE MAILS BY ID ====
/usr/sbin/exim -v -Mrm (MAIL ID HERE)
==== LIST QUEDED MAILS ====
/usr/sbin/exim -bp
==== OUTPUT NUMBER OF QUEDED MAILS ====
/usr/sbin/exim -bpc
==== DELETE FROZEN MAILS ====
/usr/sbin/exim -bp | awk '$6~"frozen" { print $3 }' | xargs exim -Mrm
==== DELIVER FORCEFULLY EMAILS ====
/usr/sbin/exim -qff -v -C /etc/exim.conf &
==== FREEZE MAILS FROM SENDER ====
/usr/sbin/exiqgrep -i -f (MAIL ADDRESS HERE) | xargs exim -Mf
==== REMOVE MAILS FROM SENDER ====
/usr/sbin/exiqgrep -i -f (MAIL ADDRESS HERE) | xargs exim -Mrm
View 14 Replies
View Related
Jun 5, 2007
I asked around and found [url] and win-bash.exe on source forge.
View 1 Replies
View Related
Aug 14, 2007
This can be adapted to other operating systems, for the scope of this tutorial it will be designed for Redhat enterprise / Centos ....
View 0 Replies
View Related
Apr 26, 2009
im trying to write a script interfacing to WHM again via remote access key. What I want to achieve is to remove an ip from iptables. using PHP script (CURL), any thoughts on how i can remove an ip from iptables? I know the ssh command how to do it but i dont know if it will work via a PHP (CURL) script connecting to WHM via remote access key.
View 1 Replies
View Related
Feb 4, 2008
This is following on from:
[url]
So I need to execute a list of commands via a cron job rather than having the script 'wait' for the shell to finish processing (as this was leading to time outs and all sorts of issues).
I'm guessing the way to do this is to have my php set up a cron job to occur at some point in the near future (like current time + 1 min), then to prevent the job from repeating the next hour, it removes itself from the cron list as the final command.
Does this sound like a reasonable way to go about executing a queue of shell commands from the browser that take an indefinite (possibly long) amount of time?
View 4 Replies
View Related
Jul 12, 2008
I've been concerned about executing commands through (./) using php and perl shells on the server
a new way of hacking these days is using perl shells , even if the perl was terminated on the server ,, or was forbidden for users
hackers upload a (perl) program to the server to use it instead of the server's own perl
any way ,,
chmoding the (ls-cat-more-less) to 4750 seems to give permission denied when exeuting these programs on the server
but the hackers also found that they could upload their own ls-cat-more-less programs and use them instead of the server's
they also could rename them ls==>ki or anything and use them like this
./ki /etc/valiases -alXrt
and the commands work like charm for them
./ <<--- this command uses the sh program on the server ,, ((sh which refers to bash on most servers))
so
./ki
is the same as
sh ki
and
bash ki
so i tried chmoding sh with 4750 and that killed the exploit
i was concerned about cpanel's and the website's functionality
so i tried changing an accounts password and creating a database ,, they both worked fine
so ,, if u thing chmoding 4750 sh is a bad idea please let me know
and if you know any other ways of disabling all the perl scripts on the server
View 14 Replies
View Related
Dec 15, 2007
if after doing the following and transferring my domains to the server, they will functions properly as far as BIND setup is concerned. This will also serve as installation instructions for others if you can verify that this is all good.
I have installed BIND9 and setup DNS with the following:
------------------------------------------------------------------------
yum install bind-chroot
chmod 755 /var/named/
chmod 775 /var/named/chroot/
chmod 775 /var/named/chroot/var/
chmod 775 /var/named/chroot/var/named/
chmod 775 /var/named/chroot/var/run/
chmod 777 /var/named/chroot/var/run/named/
chown -R named /var/named/chroot/etc
chown -R named /var/named/chroot/var
cd /var/named/chroot/var/named/
ln -s ../../ chroot
cp /usr/share/doc/bind-9.3.3/sample/var/named/named.local /var/named/chroot/var/named/named.local
cp /usr/share/doc/bind-9.3.3/sample/var/named/named.root /var/named/chroot/var/named/named.root
touch /var/named/chroot/etc/named.conf
chkconfig --levels 235 named on
named.conf now contains:
Code:
options {
pid-file "/var/named/chroot/var/run/named/named.pid";
directory "/var/named/chroot/var/named";
query-source address * port 53;
allow-query { any; };
recursion no;
};
zone "server.mydomain.com" { type master; file "server.mydomain.com.db"; };
zone "mydomain.com" { type master; file "mydomain.com.db"; };
zone "mydomain.net" { type master; file "mydomain.net.db"; };
Upload named.conf to /var/named/chroot/etc
Modify /etc/resolv.conf to have the following before its current data:
search mydomain.com
nameserver 127.0.0.1
nameserver 78.129.143.155 // Replace this with the server's IP
// So below these there should be one or more nameserver $ip that point to the ISP's name servers so that the server can download stuff.
Modify /etc/host.conf to become the following:
order hosts,bind
multi on
nospoof on
Modify the files mydomain.com.db and mydomain.net.db and server.mydomain.com.db
to have the correct IP address. (These are DNS zone files that I'm sure are correct so I don't need you to confirm those.)
* Upload them to /var/named/chroot/var/named
/etc/init.d/named start
View 10 Replies
View Related
Nov 15, 2007
I'm trying to write some scripts that automate the installation of a website with a content management system. This includes creating domains, installing databases etc via plesk API.
Now we have it creating the domains and databases via plesk, this is not the issue. It's permission problems issuing commands on the server.
I need to have the script install the cms and this requires writing files to a folder on the server owned by a user which is created with the domain.
e.g.
user creates timsdomain.com with ftp user name tim
Plesk makes directory on webserver called ~/vhosts/timsdomain.com/
inside this directory is a folder called httpdocs.
All the files within this folder are owned by tim.
Now my script (running as 'apache' in a folder owned by 'admin') needs to write/edit files to this directory as the user tim (or whatever user was created when the domain was set up).
How can I do this from a php script?
My idea would be to log in as the new user and then start issuing commands but I don't know how to login a user from a script.
I've tried exec, exec_shell etc
trying to log in via script as the new user using sudo/su/suid etc but they all ask for a password (for obvious reasons) but I cannot see a way to send the password to the command with the script. Ssh?
I don't know. Help
Here's some pseudocode that demonstrates what I'm trying to do, if you can think of a better way I'm all ears.
Code:
//User Fills in CMS/Domain information which becomes Form_Data
//uses plesk to create blank domain, create email addresses and empty database
Make_Domain(Form_Data) {
Plesk = Get_Plesk_Object();
Plesk.Create_Domain();
Plesk.Create_Database();
Build_CMS(Form_Data);
}
//HERE IS WHERE I AM HAVING TROUBLE: I can't figure out how to change the user so I can install files to a
// different directory other than the current user's directory (admin)
Build_CMS(Form_Data) {
change_to_user(Form_Data.ftp_username, FormData.ftp_password);
unpack_CMS_archive_into(user_directory); //eg unpack cms.tar into 'timsdomain.com' (if the above command didn't switch the current directory to users home directory)
//initialises CMS config files and installs CMS data to database
Run_Install_Scripts_On_Server(Form_Data);
//albeit complex, most important part of script
Confirm_Tim_Is_Awesome();
}
Confirm_Tim_Is_Awesome() {
while (getTim().has_moustache()) {
echo "<em>You're still awesome. </em>";
}
}
View 2 Replies
View Related
